Network Forensics, Black Hat Asia Edition

Network Forensics will teach you how to follow the attacker's footprints and analyze evidence from the network environment. Every student will receive a fully-loaded, virtual forensics workstation, designed by network forensics experts and distributed exclusively to Network Forensics students.

This class is for advanced students who are already familiar with the basics of TCP/IP networking, Linux and networking tools such as Wireshark and tcpdump. Bring your own caffeine and be ready.

• Information security professionals with some background in hacker exploits, penetration testing, and incident response.
  
• Incident Response Team Members who are responding to complex security incidents/intrusions and need to utilize network forensics to help solve their cases.
  
• Law enforcement officers, federal agents, or detectives who want to master network forensics and expand their investigative skill set to include packet captures, IDS/IPS analysis, web proxies, covert channels, and a variety of network-based evidence.
  
• Network and Computer Forensic Professionals who want to solidify and expand their understanding of network forensic and incident response related topics.
  
• Networking professionals who would like to branch out into forensics in order to understand information security implications and work on investigations.
  
• Anyone with a firm technical background who might be asked to investigate a data breach incident, intrusion case, or investigate individuals that are considered technically savvy.
  

• Lab workbook.
  
• Textbook, "Network Forensics: Tracking Hackers Through Cyberspace" (Prentice Hall, 2012).
  
• DVD/USBs containing lab exercises.